Lucene search
HistoryApr 11, 2014 - 2:55 p.m.
CVE-2014-2540
cve-2014-2540
sql injection
orbitscripts
orbit open ad server
vulnerability
nvd
8.3 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
33.8%
SQL injection vulnerability in OrbitScripts Orbit Open Ad Server before 1.1.1 allows remote attackers to execute arbitrary SQL commands via the site_directory_sort_field parameter to guest/site_directory.
| CPE | Name | Operator | Version |
|---|---|---|---|
| orbitscripts:orbit_open_ad_server | orbitscripts orbit open ad server | le | 1.1.0 |
Related
exploitpack
exploitpack
Orbit Open Ad Server 1.1.0 - SQL Injection
2014-04-10 00:00:00
prion
prion
Sql injection
2014-04-11 14:55:00
securityvulns
securityvulns
SQL Injection in Orbit Open Ad Server
2014-05-04 00:00:00
zdt
zdt
Orbit Open Ad Server 1.1.0 SQL Injection Vulnerability
2014-04-10 00:00:00
packetstorm
packetstorm
Orbit Open Ad Server 1.1.0 SQL Injection
2014-04-09 00:00:00
htbridge
htbridge
SQL Injection in Orbit Open Ad Server
2014-03-19 00:00:00
exploitdb
exploitdb
Orbit Open Ad Server 1.1.0 - SQL Injection
2014-04-10 00:00:00
8.3 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.001 Low
EPSS
Percentile
33.8%
Related for CVE-2014-2540